Differences between revisions 1 and 5 (spanning 4 versions)
Revision 1 as of 2007-05-15 11:50:30
Size: 1108
Comment:
Revision 5 as of 2009-03-16 03:32:34
Size: 1225
Editor: anonymous
Comment: converted to 1.6 markup
Deletions are marked like this. Additions are marked like this.
Line 1: Line 1:
For Etch(and later), a mirror needs to be signed or else people have to confirm every time they want to install a package. Since we already uses our own apt-source (http://ftp.skolelinux.no/skolelinux etch(-test) local), we've already done this, and the key is inside the package debian-edu-archive-keyring. Now, for netboot installation of debian-edu, we need to build our own mirror to combine the needed packages from both debian etch and debian-edu etc(-test) (sometimes called lenny?) The installer is pretty much standard, but we need to add our own key to make the installer accept our mirror
{{{
APTOPTIONS="Apt::Architecture=i386
            Dir::Etc::sourcelist=$PWD/apt/sources.list
            Dir::State=$PWD/apt/state
            Dir::State::Status=$PWD/apt/status
            Dir::Cache=$PWD/apt/cache
            Dir::Cache::Archives=$PWD/incoming
            Debug::NoLocking=true"
Line 3: Line 11:
So the keys automaticly installed using the netboot installer is now:
 debian archive
 debian-edu archive
 mine (finnarne at skolelinux dot no aka faj at bzz dot no)

for an automatic mirror build, I need to set up a key-signing mechanism using another key, but I have not gotten around to it yet.

So the new installer (initrd.gz) has (at least) 3 keys included.
And to automate the inclusion of the debian-edu-udebs, I made a preseed file to include them. The downside is that it not possible to add more udebs anymore. (If someone has a pointer or a clue on how to fix this, please send me a mail)
apt-get $(for OPT in $APTOPTIONS ; do echo -n "-o $OPT " ; done) source debian-installer
INSTALLER=$(find . -maxdepth 1 -type d -name "debian-installer-*")
echo "deb file:$PWD etch main/debian-installer" >> $INSTALLER/build/sources.list.udeb.local
    if [ -f $INSTALLER/build/config/local ] ; then
    grep -v "^KEYRING" $INSTALLER/build/config/local > $INSTALLER/build/config/local.new
    mv $INSTALLER/build/config/local.new $INSTALLER/build/config/local
fi
cat /usr/share/keyrings/debian-archive-keyring.gpg ~/.gnupg/pubring.gpg > $INSTALLER/build/config/local_keyrings.gpg
echo "KEYRING=config/local_keyrings.gpg" >> $INSTALLER/build/config/local
fakeroot make -C $INSTALLER/build/ build_netboot
rsync -av --delete $INSTALLER/build/dest/netboot/ netboot/
rm -rf debian-installer*
}}}

The installer is pretty much standard, but we need to add our own key to make the installer accept our mirror

APTOPTIONS="Apt::Architecture=i386
            Dir::Etc::sourcelist=$PWD/apt/sources.list
            Dir::State=$PWD/apt/state
            Dir::State::Status=$PWD/apt/status
            Dir::Cache=$PWD/apt/cache
            Dir::Cache::Archives=$PWD/incoming
            Debug::NoLocking=true"

apt-get $(for OPT in $APTOPTIONS ; do echo -n "-o $OPT " ; done) source debian-installer
INSTALLER=$(find . -maxdepth 1 -type d -name "debian-installer-*")
echo "deb file:$PWD etch main/debian-installer" >>  $INSTALLER/build/sources.list.udeb.local
    if [ -f $INSTALLER/build/config/local ] ; then
    grep -v "^KEYRING" $INSTALLER/build/config/local > $INSTALLER/build/config/local.new
    mv $INSTALLER/build/config/local.new $INSTALLER/build/config/local
fi
cat /usr/share/keyrings/debian-archive-keyring.gpg ~/.gnupg/pubring.gpg > $INSTALLER/build/config/local_keyrings.gpg
echo "KEYRING=config/local_keyrings.gpg" >> $INSTALLER/build/config/local
fakeroot make -C $INSTALLER/build/ build_netboot
rsync -av --delete  $INSTALLER/build/dest/netboot/ netboot/
rm -rf debian-installer*